CVE Catalog

CVE-2026-9346

High
Published: Translated: NVD NIST

Summary

A flaw has been found in Edimax EW-7438RPn up to version 1.31, affecting the function formWirelessTbl in the file /goform/formWirelessTbl. Manipulating the submit-url argument can lead to buffer overflow.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a serious threat to the security of the device and the network it is installed in.

Recommendation

It is recommended to update the device to the latest firmware version to mitigate this vulnerability and to monitor network traffic for potential attack attempts.

Original NVD description (English source)

A flaw has been found in Edimax EW-7438RPn up to 1.31. This impacts the function formWirelessTbl of the file /goform/formWirelessTbl of the component webs. Executing a manipulation of the argument submit-url can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS